Skills
skills/oimiragieo/agent-studio/html-tailwind-css-and-javascript-expert-rule/Gen Agent Trust Hub

html-tailwind-css-and-javascript-expert-rule

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its core function of processing external web content.\n
  • Ingestion points: Specifically reads and edits files matching **/*.{html,js,css} using the Read and Edit tools.\n
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the guidelines.\n
  • Capability inventory: The skill utilizes Read, Write, Edit, and Bash tools, providing a significant capability surface if an injection occurs.\n
  • Sanitization: No input validation or sanitization mechanisms are implemented in the skill's scripts or instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 02:59 AM